Client verification points for a mixed Windows primary server
The following table describes the client verification procedures for a mixed Windows primary server.
Table: Verification procedures for a mixed Windows primary server
Procedure | Description |
|---|---|
Verify the credential for the Windows client |
See the following topic for the verification procedures for Windows clients: |
Verify the credential for the UNIX client |
Check that the credential for the client is indeed for the correct client and comes from the correct domain. Run bpnbat -whoami with -cf for the client's credential file. For example: bpnbat -whoami -cf \
"/usr/openv/var/vxss/credentials/
unix_client.company.com"
Name: unix_client.company.com
Domain: NBU_Machines@win_primary.company.com
Issued by: /CN=broker/OU=root@
win_primary.company.com/O=vx
Expiry Date: Oct 31 21:16:01 2007 GMT
Authentication method: Veritas Private Security
Operation completed successfully. |
Verify that the authentication client libraries are installed |
Run bpnbat -login on the client to verify that the authentication client libraries are installed. bpnbat -login
Authentication Broker: unix_media2.company.com
Authentication port [Enter = default]:
Authentication type (NIS, NIS+, WINDOWS, vx, unixpwd)
: NIS
Domain: min.com
Name: Smith
Password:
You do not currently trust the server:
unix_media.company.com, do
you wish to tr
ust it? (y/n):
y
Operation completed successfully. |
Verify the UNIX authentication broker |
Ensure that the UNIX authentication broker has mutual trust with the main windows authentication broker or ensure that it uses the Windows broker as its root broker. |